Shiori

Privacy Policy

Last updated: April 4, 2026

This policy describes how Shiori ("we", "our", or "us") collects, uses, and shares information when you use the Shiori Chrome extension and its associated website. We keep this simple - we collect only what is necessary to provide the service.

1. Information We Collect

User-saved content

When you use Shiori, we store the content you choose to save: bookmarked tabs (URLs and page titles), notes, to-do items, and any other items you create inside the extension. This is the core data the extension exists to hold for you.

Extension settings

Your extension preferences and configuration are stored so they persist across devices and sessions.

Account information

If you create an account to enable cloud sync, we collect your email address and a hashed password (or OAuth identity if you sign in via a third-party provider). We do not store plain-text passwords.

Payment information

Payments for the Pro plan are processed by a third-party payment provider (Dodo Payments). We receive a confirmation of payment status (e.g. active, cancelled) but we never see or store your card number or other billing details - those are handled entirely by the payment processor.

What we do NOT collect

We do not collect your browsing history, the content of pages you visit, keystrokes, screenshots, or any other data beyond what is described above. We do not run ads and we do not build profiles for advertising purposes.

2. How We Use the Information

  • Cloud sync and backup. Your saved content and settings are uploaded to our servers so you can access them from any device and recover them if you reinstall the extension.
  • Account management. Your email is used to identify your account, send essential transactional emails (e.g. password reset, subscription receipts), and associate your data with your subscription status.
  • Service operation. Server logs are retained for a short period to diagnose errors and maintain reliability. They are not linked to your personal identity.

3. Information We Share

We do not sell or rent your data. We share it only with the service providers necessary to run Shiori:

  • Convex - our cloud database and backend provider, which stores and synchronises your data.
  • Dodo Payments - our payment processor, which handles all billing for Pro subscriptions.

Beyond these providers, we will only disclose data if required by law or to protect our legal rights.

4. Data Retention

Your data is retained for as long as your account is active. If you delete your account, your stored content and settings are deleted from our servers. Anonymised server logs are purged on a rolling basis.

5. Your Rights and Choices

  • Access and export. Your data lives in the extension and can be viewed at any time.
  • Deletion. You can delete your account and all associated data by contacting us.
  • Offline use. Cloud sync requires an account. You can use the extension without an account - your data will only be stored locally on your device.

6. Security

Data is transmitted over HTTPS and stored in a managed cloud database with access controls. Passwords are hashed and never stored in plain text. While no system is completely immune to risk, we take reasonable measures to protect your information.

7. Children's Privacy

Shiori is not directed at children under 13. We do not knowingly collect personal information from children.

8. Changes to This Policy

If we make material changes to this policy, we will update the "Last updated" date above. Continued use of Shiori after a change constitutes acceptance of the updated policy.

9. Contact

Questions about this policy? Reach us at support@getshiori.com.